|Support provided by||Evolveum|
|Target systems||Office365, Azure Active Directory|
Currently being developed. Basic features work well, currently lacking full group support due to Azure Active Directory Graph API limitations.
Connector usable for connecting to Office 365 and Azure Active Directory using the Azure AD Graph API
Capabilities and Features
Currently only users are supported, group management has not been implemented at present due to the Azure Active Directory Graph API not supporting the creation of mail enabled groups currently.
Licenses are in the format:
if you wish to assign only certain plans to a user, if you wish to assign all plans within a SKU to a user simply specify
SKUs are the subscriptions such as "Microsoft Office 365 Plan A3 for Students" and plans are the individual components "Exchange Online (Plan 2)"
The SKU and plan need to be specified in the short format which can be found using the Graph Explorer (http://graphexplorer.cloudapp.net/) the SKU is the skuPartNumber (e.g. ENTERPRISEPACK_STUDENT) and the PLAN is the servicePlanName (e.g. EXCHANGE_S_ENTERPRISE)
|forceChangePasswordNextLogin||Boolean to force change of password at next login||forceChangePasswordNextLogin||Only used in managed domains|
Mandatory for federated domains
This string is base64 encoded and must match that which is passed as the immutable ID within the federation solution.
Depending on the source of the attribute and the federation solution being used the way the attribute is base 64 encoded varies and within this connector can be configured using the immutableIDEncodeMechanism configuration variable.
Microsoft manipulate the order of the bits a GUID when base 64 encoding hence the various encoding mechanisms.
|usageLocation||Mandatory if licenses are to be assigned|
|NAME||This should match the userPrincipalName within a federated environment|